2 matches found
Fortinet Fortigate Cert private key disclosure (FG-IR-20-014)
The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-20-014 advisory. - A clear text storage of sensitive information CWE-312 vulnerability in both FortiGate version 6.4.0 through 6.4.1, 6.2.0...
CVE-2022-22302
CVE-2022-22302 affects FortiGate versions 6.0.0–6.0.13, 6.2.0–6.2.9, and 6.4.0–6.4.1, plus FortiAuthenticator 5.5.0 and all 6.0/6.1 FortiAuthenticator releases. The issue is a clear-text storage of sensitive information (CWE-312) that may let a local unauthorized user retrieve private keys used f...